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Dependable systems 

Dependability: a definition 



A system is designed to provide a certain service. Dependability is the ability of 
a system to deliver a specified service. 

In particular: 


Dependability is “that property of a computer system such that reliance can 
justifiably be placed on the service it delivers” If the system stops delivering the 
intended service, we call this a failure. 

Dependsbilify allribu tes 


Dependability is a concept that encompasses multiple properties: 
-Availability 

readiness for correct, service 


- Reliability 

continuity of correct service 


Safety 

absence ol catastrophic consequences 
and the environment 


on the user(s) 


- Confidentiality 

die absence ol unauthorized disclosure o I information 

- Integrity 

absence of improper system alterations 

- Maintainability 

ability to undergo modifications and repairs 
y I )cucfidabi lily properties can be measured in terms ol probability 
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Dependability - 


Availability 
Reliability 
Safely 

Confidentiality 
integrity 
' Maintainability 


Security j 


Whiit is a system? 


" ySte '" : enlity t,lat int ^ with other ethics, i.e., 
- hardware. 


ot her systems, including 


- networks. 

open filing systems software, 
application sol (ware. 


- humans, and 


•• the physical world with its natural phenomena. 
1 hose other systems are the environment ol the given system. 


f he system boundary is the common frontier between the system and its 
environment. 


fundamental properties of a ,system: 

functionality, performance, dependability and security, and cost. 


I’ll resits to Dependability: Failures, Errors and Faults 


Correct service js delivered when the service implements the system function. 

A service failure, often abbreviated failure, is an event that occurs when the 
delivered service deviates from coircoi service. A service fails either because it 
does not comply with the functional specification,or because this specification did 
not adequately describe /.tie system./.unction. 

failure is a IransitiQU.from correct service to incorrect service, 
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A fault causes an error in the internal state o f the system, the error causes the 
system to faii 

Paitial failure: Services implementing the functions may leave the system in a 
degiailed mode that still offers a subset of needed services to the user. The 
specification may identify several such modes, e.g., slow service, limited service, 
emergency service, etc. Mere, we say that (lie system has suffered a partial failure 
of its functionality or performance. 


Means for achieving dependability 

> A combined use of methods can be applied as means for achieving 
dependability. These means, can be classified into - 


f ault Prevention techniques 

to prevail the occurrence and introduction ojjuuitx 
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methods,.. ii W’ lt -view,conip 0nen | 3u . 

ltilln 8. quality control 

“ iormal methods 

2 ’ Fau,t To,cn "»cc tccli n j ( , ucs 

limits l ° Pl ° VKlU * SBrvice coni P , y in g with the specification in spite of 
1 V ‘ ,Vth Re nioval techniques 

10 redl,CC ,he ^ reseilcc of faults (number,scriouness,...) 

4. I 1 aiiIt Forecasting techniques 

to estimate Die present number, the tare incidence, and the 
consequences of faults 


i)epenvSability tree 


arid 

Security 


— Attributes - 


-- Threats 


Means 



• Availability 

• Reliability 
■ Safety 

Confidentiality 

Integrity 

Maintainability 

Faults 

Errors 

Failures 

Fault Prevention 
Fault Tolerance 
Fault Removal 
Fault Forecasting 


*> Security:. Availul.ility, Confiilentinlily, Integrity 
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The Means (o attain Dependability 

2 f Fa "!' PrCVenti <»> technique, 
2- »•"< < tolerance technique, 

‘ * ^ au,t removal 
4 * ,<au,t forecasting 


>■ if iiult prevention techniques 

; .iul‘ piceention-Ceclmiqucs arc intended lo keep ('•mlr ™,i r ,r,i 

the design .stage lt,u,L out ol die system at 

ro !-iPMi! nC '' :li '’ ySlOT! l ' ! ' 8l " e ' ;ring t*dioique3(design mclliodolries 
f Ja.cn rn.es, use ol high reliable components). 

I nose include 

- !i (igiri software developmentprocess and 
lormnl methods 

2, Fanil tolerance techniques 
Fault tolerance: 

ability oj the .system to deliver a correct service afar the occurrence of faults 

> Why fault tolerance techniques? 

even with the most careful fault avoidance, faults will eventually occur and 
result i/i a system failure 

> Fault tolerance techniques: 

carried out via error detection arid system recovery, redundancy to 
counteract the effects of faults 

Protective redundancy: additional components or processes that mask oi conect 
errors or faults inside'a system so they do riot become observable iailuics in its 

service 


Scanned by CamScanner 







.gnnisi\tit>n oi fault tolerance 

i” ..««„«, ion 

- brror detection 

" ‘'damage containment 

• Damage assessment/diagnosis 

" '^‘configuration 
Bi ror recovery / restart 

- 1'n.ill Ircatmenl / iepair / rcmfeyraiion 

*• removal (ecioiitjnes 

1'auIt diagnosis 

- Nature and location of faults 

y fault passivation 

- Removing the components identified faulty 


cheeking whether the system adheres 
|n properties, specific to the considered system 


diagnosing (he lauIt which pn'ocntcc 1 the | ocalion t 

vet iliealion conditions Irani being lu gy_-- 


. „,o.„ve.(VTcelioas 
performing the ncccss.in 

fault passivation • - y ' _ 


i i_ 

L. 




> Important aspects: 
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